Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4JCpOB7Wd7LrPlQsjW33YWYyaEQ.roa
File: 4JCpOB7Wd7LrPlQsjW33YWYyaEQ.roa (raw, json)
Hash identifier: k9mxCreGD/b/FU0Rc0K9ILQVJ0/c4ZHbWX/2B1lnQjI=
Subject key identifier: E0:90:A9:38:1E:D6:77:B2:EB:3E:54:2C:8D:6D:F7:61:66:32:68:44
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0442
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4JCpOB7Wd7LrPlQsjW33YWYyaEQ.roa
Signing time: Thu 27 Jul 2023 16:43:08 +0000
ROA not before: Thu 27 Jul 2023 16:43:08 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.76.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1090 (0x442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:43:08 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=E090A9381ED677B2EB3E542C8D6DF76166326844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:45:13:17:39:98:63:c6:f8:a7:d8:fe:48:
95:fd:62:24:2f:7a:e0:f9:69:22:38:86:a8:67:1d:
00:de:ca:e9:1e:b2:da:94:eb:12:e3:28:e0:0e:96:
e9:96:e8:19:24:b6:35:21:c5:c2:60:15:9d:0a:20:
7c:14:cc:1d:24:ba:6d:a5:14:87:08:7e:20:13:ef:
8e:68:6c:6a:40:26:59:df:15:4a:36:c2:73:4c:02:
ab:9a:49:22:a5:32:4d:28:23:c8:e5:39:a4:29:f3:
7a:64:c3:95:83:86:6d:2b:af:0b:72:78:21:8b:d7:
f1:89:bc:ef:42:e5:6e:6b:5c:66:fd:99:32:56:88:
83:7e:10:a8:a2:83:de:55:49:61:66:48:2b:db:c2:
55:5f:d3:87:b3:00:c7:c4:23:c5:d6:d3:6b:00:91:
49:e0:74:88:14:08:2a:d4:e1:9b:bd:9a:e3:5e:cf:
aa:48:ee:3b:4f:31:07:e8:7e:03:b8:be:e0:6f:e0:
d8:ff:6c:b3:02:1d:2f:fe:79:ee:2e:17:ef:fc:ad:
1e:09:26:f1:be:81:ea:c4:a0:ca:db:d2:31:66:6f:
c6:ec:e8:d5:17:a0:0e:45:a2:2d:b1:47:f1:e9:88:
68:2c:c0:d9:10:8a:92:b1:7a:39:13:93:a2:fe:6b:
99:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:90:A9:38:1E:D6:77:B2:EB:3E:54:2C:8D:6D:F7:61:66:32:68:44
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4JCpOB7Wd7LrPlQsjW33YWYyaEQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.4.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:43:42:8a:23:6f:5c:7b:60:c3:27:10:2e:63:25:36:47:92:
45:7e:b3:a2:1f:6d:47:66:43:2d:e9:a9:8e:d7:4e:4f:11:5a:
9f:42:bf:67:05:2c:41:f2:64:e4:82:78:7d:db:37:4d:d1:24:
47:8b:07:a4:b9:f5:79:0d:2d:75:f1:ea:ff:2a:a0:99:dd:17:
0e:16:84:84:66:f8:38:ae:ad:ee:0a:bc:03:44:7c:aa:54:77:
be:e5:c4:77:00:f4:fb:cf:7c:8e:44:ad:a4:73:13:85:6b:70:
3f:ba:d2:76:37:bd:e6:b3:66:95:47:58:c4:10:96:39:96:dc:
36:64:90:3c:a8:27:f5:45:ba:16:ea:3a:63:30:03:93:c2:7c:
0b:78:eb:6a:cd:36:df:36:4c:3c:c1:29:d1:a4:72:0b:53:35:
0f:78:0c:0d:ae:d9:1a:ea:f3:68:3a:21:43:db:8d:7d:f6:09:
01:2d:3f:08:13:24:a5:e5:3f:9c:02:92:04:de:ea:5b:19:2e:
91:ce:c3:fa:d8:34:63:b1:b1:46:84:61:c0:68:97:ef:e9:18:
4d:99:d2:2e:01:a2:ef:6b:9b:8a:4a:7e:3f:d5:a2:c2:a3:58:
fb:6c:0f:9c:7f:71:d0:81:1e:df:2a:30:e1:53:72:02:8c:14:
d6:e2:73:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:29 2025 by rpki-client